jlobbes/ba-thesis
jlobbes/ba-thesis
1
0
Fork 0
Code Issues Pull Requests Releases Activity

staging #2

Merged
jlobbes merged 2 commits from staging into master 2023-08-17 19:18:14 +01:00
Conversation 0 Commits 2 Files Changed 13 +63 -11
9 changed files with 63 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit 9f8775453a - Show all commits

4
README.md
View File

@ -84,10 +84,10 @@ sudo docker exec -itu django medwings-django <command>
Run database migrations inside the running container like so: Run database migrations inside the running container like so:
```bash ```bash
sudo docker exec -itu medwings-django python manage.py migrate sudo docker exec -itu django medwings-django python manage.py migrate
``` ```
To enter django's interactive shell, run: To enter django's interactive shell, run:
```bash ```bash
sudo docker exec -itu medwings-django python manage.py shell sudo docker exec -itu django medwings-django python manage.py shell
``` ```

8
app/authentication/templates/authentication/register-init.html
View File

@ -8,14 +8,18 @@
<div class="flex flex-col justify-center items-center gap-2 py-4 mx-4 max-w-4xl"> <div class="flex flex-col justify-center items-center gap-2 py-4 mx-4 max-w-4xl">
<h2>Register</h2> <h2>Register</h2>
<p> <p>
Something something glad you're signing up. We're thrilled that you're taking the next step towards a healthier future by signing up for Medwings!
By linking your Withings account, we can seamlessly integrate your health data with Medwings.
</p> </p>
<div class="flex flex-col gap-2 items-center call-to-action-box"> <div class="flex flex-col gap-2 items-center call-to-action-box">
<p class="font-semibold">To get started, please allow us to access your health data</p> <p class="font-semibold">To get started, please allow us to access your health data</p>
<a class="btn text-lg" href="{{ auth_url }}">Link Withings Account</a> <a class="btn text-lg" href="{{ auth_url }}">Link Withings Account</a>
</div> </div>
<p> <p>
Something something why this is necessary. The registration process will continue after you've linked your Withings account.
This step is essential as it allows Medwings to securely access your health data from the Withings cloud.
We use OAuth2, a standard and secure method, to ensure that your personal data remains private and under your control.+
Once your accounts are linked, you'll be all set to start exploring your health data and insights through Medwings.
</p> </p>
</div> </div>
{% endblock content %} {% endblock content %}

10
app/core/settings.py
View File

@ -12,7 +12,7 @@ https://docs.djangoproject.com/en/4.2/ref/settings/
from pathlib import Path from pathlib import Path
from os import getenv from os import getenv
from utils import parse_string_as_bool from .utils import parse_string_as_bool
# Build paths inside the project like this: BASE_DIR / 'subdir'. # Build paths inside the project like this: BASE_DIR / 'subdir'.
@ -27,6 +27,13 @@ SECRET_KEY = getenv('DJANGO_SECRET_KEY')
DEBUG = parse_string_as_bool(getenv('DJANGO_DEBUG_MODE', 'false')) DEBUG = parse_string_as_bool(getenv('DJANGO_DEBUG_MODE', 'false'))
ALLOWED_HOSTS = [ '*' ] ALLOWED_HOSTS = [ '*' ]
# Force HttpRequest.build_absolute_uri() to generate HTTPS links in production
# This is necessary when running behind a reverse proxy
#USE_X_FORWARDED_HOST = False if DEBUG else True
#SECURE_PROXY_SSL_HEADER = () if DEBUG else ('HTTP_X_FORWARDED_PROTO', 'https')
USE_X_FORWARDED_HOST = True
SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
# Application definition # Application definition
INSTALLED_APPS = [ INSTALLED_APPS = [
@ -119,6 +126,7 @@ STATIC_URL = 'static/'
STATICFILES_DIRS = [ STATICFILES_DIRS = [
BASE_DIR / 'static', BASE_DIR / 'static',
] ]
STATIC_ROOT = '/srv/static'
# Default primary key field type # Default primary key field type

10
development.Caddyfile Normal file
View File

@ -0,0 +1,10 @@
:8000 {
handle * {
reverse_proxy * medwings-django:8000
}
log {
output stderr
format console
}
}

2
development.caddy.Dockerfile
View File

@ -16,7 +16,7 @@ RUN addgroup --gid ${CUSTOM_GID:-1000} ${CUSTOM_GROUPNAME} && \
# Copy caddy config # Copy caddy config
WORKDIR /app WORKDIR /app
COPY --chown=${CUSTOM_USERNAME}:${CUSTOM_GROUPNAME} Caddyfile /app/ COPY --chown=${CUSTOM_USERNAME}:${CUSTOM_GROUPNAME} development.Caddyfile /app/Caddyfile
# Run Caddy in development mode # Run Caddy in development mode
USER ${CUSTOM_UID:-1000}:${CUSTOM_GID:-1000} USER ${CUSTOM_UID:-1000}:${CUSTOM_GID:-1000}

21
production.Caddyfile Normal file
View File

@ -0,0 +1,21 @@
{
servers {
trusted_proxies static private_ranges
}
}
:8000 {
handle_path /static/* {
root * /srv/static
file_server
}
handle * {
reverse_proxy * medwings-django:8000
}
log {
output stderr
format console
}
}

5
production.caddy.Dockerfile
View File

@ -12,11 +12,12 @@ ENV CUSTOM_USERNAME=webserver
ENV CUSTOM_GROUPNAME=webserver ENV CUSTOM_GROUPNAME=webserver
RUN addgroup --gid ${CUSTOM_GID:-1000} ${CUSTOM_GROUPNAME} && \ RUN addgroup --gid ${CUSTOM_GID:-1000} ${CUSTOM_GROUPNAME} && \
adduser --uid ${CUSTOM_UID:-1000} --shell /bin/ash ${CUSTOM_USERNAME} --ingroup ${CUSTOM_GROUPNAME} --disabled-password && \ adduser --uid ${CUSTOM_UID:-1000} --shell /bin/ash ${CUSTOM_USERNAME} --ingroup ${CUSTOM_GROUPNAME} --disabled-password && \
mkdir /app && chown ${CUSTOM_UID:-1000}:${CUSTOM_GID:-1000} /app && chmod 700 /app mkdir /app && chown ${CUSTOM_UID:-1000}:${CUSTOM_GID:-1000} /app && chmod 700 /app && \
mkdir -p /srv/static && chown ${CUSTOM_UID:-1000}:${CUSTOM_GID:-1000} /srv/static && chmod 700 /srv/static
# Copy caddy config # Copy caddy config
WORKDIR /app WORKDIR /app
COPY --chown=${CUSTOM_USERNAME}:${CUSTOM_GROUPNAME} Caddyfile /app/ COPY --chown=${CUSTOM_USERNAME}:${CUSTOM_GROUPNAME} production.Caddyfile /app/Caddyfile
# Run Caddy in development mode # Run Caddy in development mode
USER ${CUSTOM_UID:-1000}:${CUSTOM_GID:-1000} USER ${CUSTOM_UID:-1000}:${CUSTOM_GID:-1000}

4
production.django.Dockerfile
View File

@ -12,7 +12,8 @@ ENV CUSTOM_USERNAME=django
ENV CUSTOM_GROUPNAME=django ENV CUSTOM_GROUPNAME=django
RUN addgroup --gid ${CUSTOM_GID:-1000} ${CUSTOM_GROUPNAME} && \ RUN addgroup --gid ${CUSTOM_GID:-1000} ${CUSTOM_GROUPNAME} && \
adduser --uid ${CUSTOM_UID:-1000} --shell /bin/ash ${CUSTOM_USERNAME} --ingroup ${CUSTOM_GROUPNAME} --disabled-password && \ adduser --uid ${CUSTOM_UID:-1000} --shell /bin/ash ${CUSTOM_USERNAME} --ingroup ${CUSTOM_GROUPNAME} --disabled-password && \
mkdir /app && chown ${CUSTOM_UID:-1000}:${CUSTOM_GID:-1000} /app && chmod 700 /app mkdir /app && chown ${CUSTOM_UID:-1000}:${CUSTOM_GID:-1000} /app && chmod 700 /app && \
mkdir -p /srv/static && chown ${CUSTOM_UID:-1000}:${CUSTOM_GID:-1000} /srv/static && chmod 700 /srv/static
ENV PATH "$PATH:/home/${CUSTOM_GROUPNAME}/.local/bin" ENV PATH "$PATH:/home/${CUSTOM_GROUPNAME}/.local/bin"
# Add supervisord conf # Add supervisord conf
@ -31,3 +32,4 @@ RUN pip install -r requirements.txt
# Run supervisord # Run supervisord
EXPOSE 8000/tcp EXPOSE 8000/tcp
CMD ["/usr/bin/supervisord", "-c", "/etc/supervisord.conf"] CMD ["/usr/bin/supervisord", "-c", "/etc/supervisord.conf"]
#CMD ["uvicorn", "core.asgi:application", "--host", "0.0.0.0", "--port", "8000", "--access-log"]

10
production.docker-compose.yml
View File

@ -19,11 +19,13 @@ services:
- proxy - proxy
environment: environment:
TZ: ${TIMEZONE} TZ: ${TIMEZONE}
volumes:
- /srv/medwings/static:/srv/static:ro
labels: labels:
- "traefik.enable=true" - "traefik.enable=true"
- "traefik.http.routers.medwings.entrypoints=https" - "traefik.http.routers.medwings.entrypoints=https"
- "traefik.http.routers.medwings.rule=Host(`medwings.lobbes.dev`)" - "traefik.http.routers.medwings.rule=Host(`medwings.lobbes.dev`)"
- "traefik.http.routers.medwings-secure.middlewares=default@file" - "traefik.http.routers.medwings.middlewares=default@file"
- "traefik.http.routers.medwings.tls=true" - "traefik.http.routers.medwings.tls=true"
- "traefik.http.services.medwings.loadbalancer.server.port=8000" - "traefik.http.services.medwings.loadbalancer.server.port=8000"
- "traefik.docker.network=proxy" - "traefik.docker.network=proxy"
@ -45,6 +47,8 @@ services:
- medwings - medwings
environment: environment:
TZ: ${TIMEZONE} TZ: ${TIMEZONE}
DJANGO_DEBUG_MODE: ${DJANGO_DEBUG_MODE}
DJANGO_SECRET_KEY: ${DJANGO_SECRET_KEY}
PG_NAME: ${PG_NAME} PG_NAME: ${PG_NAME}
PG_USER: ${PG_USER} PG_USER: ${PG_USER}
PG_PASSWORD: ${PG_PASSWORD} PG_PASSWORD: ${PG_PASSWORD}
@ -56,6 +60,8 @@ services:
GOTIFY_PASSWORD: ${GOTIFY_PASSWORD} GOTIFY_PASSWORD: ${GOTIFY_PASSWORD}
GOTIFY_HOST: ${GOTIFY_HOST} GOTIFY_HOST: ${GOTIFY_HOST}
GOTIFY_PUBLIC_URL: ${GOTIFY_PUBLIC_URL} GOTIFY_PUBLIC_URL: ${GOTIFY_PUBLIC_URL}
volumes:
- /srv/medwings/static:/srv/static
medwings-postgres: medwings-postgres:
image: postgres:alpine image: postgres:alpine
container_name: ${PG_HOST} container_name: ${PG_HOST}
@ -94,7 +100,7 @@ services:
- "traefik.enable=true" - "traefik.enable=true"
- "traefik.http.routers.medwings-notifications.entrypoints=https" - "traefik.http.routers.medwings-notifications.entrypoints=https"
- "traefik.http.routers.medwings-notifications.rule=Host(`medwings-notifications.lobbes.dev`)" - "traefik.http.routers.medwings-notifications.rule=Host(`medwings-notifications.lobbes.dev`)"
- "traefik.http.routers.medwings-notifications-secure.middlewares=default@file" - "traefik.http.routers.medwings-notifications.middlewares=default@file"
- "traefik.http.routers.medwings-notifications.tls=true" - "traefik.http.routers.medwings-notifications.tls=true"
- "traefik.http.services.medwings-notifications.loadbalancer.server.port=80" - "traefik.http.services.medwings-notifications.loadbalancer.server.port=80"
- "traefik.docker.network=proxy" - "traefik.docker.network=proxy"